DocketWise Exposed SSNs and Passport Numbers of 116,000 Immigration Clients What to Do Now
In October 2025, DocketWise — a cloud-based immigration case management platform for law firms — discovered that unauthorized actors had accessed credentials for one of its third-party partner repositories. The breach involved the cloning of repositories used in a data migration pipeline, exposing unstructured data belonging to DocketWise’s law firm clients and their customers. Notifications went out on April 3, 2026 — more than five months after the breach was discovered. A class action investigation is now underway.
Quick Facts
| Field | Detail |
| Company | DocketWise (cloud-based immigration law firm software) |
| Parent Company | LawPay |
| Breach Discovered | October 2025 |
| Notifications Sent | April 3, 2026 |
| People Affected | 116,666 individuals across the U.S. |
| Data Exposed | SSNs, passport numbers, driver’s license numbers, dates of birth, financial account details, payment card info, medical records, login credentials |
| How It Happened | Hackers accessed third-party repository credentials and cloned data migration repositories |
| Settlement Status | No settlement — class action investigation underway |
| Investigating Firm | Shamis & Gentile P.A. |
| Official DocketWise Website | docketwise.com |
What Happened and How Hackers Got In
DocketWise launched an investigation with cybersecurity experts to determine the scope of the incident and to secure its systems. The investigation confirmed that unauthorized actors used valid credentials to clone certain third-party partner repositories, some of which were used in a data migration pipeline for the DocketWise application. These repositories contained unstructured data belonging to DocketWise’s law firm customers, including personal information of their clients.
In plain English: hackers did not break through DocketWise’s front door. They got hold of valid login credentials for a partner’s code repository — a storage system used during a data migration — and copied everything in it. The data inside that repository was not encrypted or otherwise protected from someone who had the right credentials.
DocketWise completed a detailed review of the impacted data to identify the types of information at risk and to whom it belonged. That review took months. The breach happened in October 2025. Affected individuals did not receive notifications until April 3, 2026.
Related article: $682K Wrongful Death Settlement Worker Died When a St. Marys Building Collapsed His Family Just Received $682,500
Every Type of Data That Was Exposed
This is one of the broadest sets of data exposed in a legal tech breach in recent memory. The compromised data included highly sensitive personally identifiable information such as names, Social Security numbers, dates of birth, driver’s license and passport numbers, financial account details, payment card information, medical records, and login credentials.
That combination is especially serious for immigration clients. A Social Security number and a passport number together give someone almost everything they need to commit identity fraud — open credit lines, file false tax returns, or impersonate someone in financial or government systems. For clients with pending immigration cases, the exposure of these document numbers can carry additional risks worth discussing with an immigration attorney.
Why This Breach Is Different From Most
DocketWise is not a bank or a hospital. It is the software that immigration attorneys use to manage client cases, track deadlines, handle forms, and store client documents. That means the data sitting in its systems is not just financial — it includes everything an immigration client hands over to their lawyer.
DocketWise, founded in 2015 by immigration attorneys in Philadelphia, provides case management, document handling, and client communication tools for legal professionals. The platform handles some of the most sensitive personal documents people own — passports, government IDs, immigration petitions — for a population that often has additional reasons to be concerned about data security.
In total, 116,666 people in the United States were affected, including 13 in Maine. The Maine disclosure figure suggests the company made formal notifications to state regulators, as required by law. Most states require breach notification within a set number of days of confirming the scope of a breach.
What to Do Right Now If You Received a Notification
If you received a breach notification letter or email from DocketWise or your immigration law firm, do these things immediately — regardless of whether a lawsuit or settlement ever materializes.
Step 1 — Freeze your credit at all three bureaus. A credit freeze at Equifax, Experian, and TransUnion is free. It prevents anyone from opening new credit accounts using your information — even someone who has your full Social Security number. This is the single most effective protection available after an SSN breach.
Step 2 — Place a fraud alert. A fraud alert is a notice to creditors to verify your identity before approving new credit. You only need to contact one bureau — it will notify the others.
Step 3 — Monitor your existing accounts. Check your bank accounts, credit card statements, and any accounts linked to the email address or login credentials DocketWise stored. Look for unfamiliar charges or login attempts.
Step 4 — File your taxes promptly if you haven’t already. SSN exposure creates a real risk that someone files a fraudulent tax return in your name. File as early as possible and consider an IRS Identity Protection PIN at irs.gov/identity-theft-central.
Step 5 — Watch your passport. If your passport number was exposed, be alert for any unusual activity on travel or government accounts. Consider renewing your passport if you are concerned about misuse.
Step 6 — Save your notification letter. This letter is proof that you were in the affected class. If a class action lawsuit results in a settlement, your notification letter and a class member ID will typically be required to file a claim.
For a complete guide to protecting yourself after an SSN breach — including how similar data breach cases have resulted in compensation — see how the NWRPC data breach settlement paid up to $3,000 for exposed Social Security numbers to understand what the process typically looks like.
What Legal Action Is Available Right Now
No lawsuit has been filed and no settlement exists as of this writing. However, legal action is clearly being prepared.
The incident has prompted legal action, with class action law firm Shamis & Gentile P.A. investigating potential compensation claims for those affected. Shamis & Gentile specializes in data breach class actions and has litigated hundreds of similar cases nationwide.
At this stage, affected individuals do not need to do anything to preserve their legal rights. If a class action is filed and a settlement is eventually reached, class members are automatically included unless they choose to opt out. You do not need to hire a lawyer or pay any fees to potentially receive compensation down the road.
What you should do is document everything. Keep records of any time spent dealing with identity fraud, any costs you incur for credit monitoring services, and any fraudulent charges you detect and have to dispute. These records form the foundation of a documented-loss claim if compensation becomes available.
For context on how similar legal tech and professional services data breach cases have resolved, see the Signature Performance data breach settlement, which paid up to $5,000 after SSNs and medical records of 106,000 people were exposed.
Key Dates
| Milestone | Date |
| Breach Discovered by DocketWise | October 2025 |
| DocketWise Investigation Completed | Early 2026 |
| Breach Notifications Sent | April 3, 2026 |
| Class Action Investigation Begins | Shamis & Gentile P.A. — ongoing |
| Lawsuit Filed | TBD |
| Settlement Reached | TBD |
| Claim Deadline | TBD |
| Payment Distribution | TBD |
Frequently Asked Questions
How do I know if my information was exposed in the DocketWise breach?
DocketWise began notifying impacted law firms and individuals starting April 3, 2026. If your immigration attorney used DocketWise to manage your case and your information was part of the breach, you should have received a notification letter or email directly. If you are unsure whether your attorney uses DocketWise, contact their office and ask.
Why did it take five months to notify people after the breach was discovered?
DocketWise completed a detailed review of the impacted data to identify the types of information at risk and to whom it belonged before sending notifications. Companies typically delay notifications while they confirm the scope of what was taken and identify every affected individual. State notification laws set varying deadlines, and the timeline here — October 2025 discovery to April 2026 notification — raises questions that plaintiffs’ attorneys are likely examining closely.
Do I need to do anything right now to be part of a future lawsuit?
No immediate action is required to preserve your eligibility for any future class action settlement. Class members are automatically included if a case is filed and settled. Save your breach notification letter and document any identity theft or fraud costs you incur — this documentation will matter if a settlement with documented-loss tiers is eventually reached.
Is my immigration case at risk because of this breach?
The breach exposed personal documents — SSNs, passport numbers, driver’s license numbers — stored in DocketWise’s system. It did not directly affect USCIS filings or your case status with immigration authorities. However, if your passport number is misused, that could create complications. If you have concerns specific to your immigration case, speak directly with your immigration attorney.
What exactly did hackers do with the data?
The attack vector was a third-party partner repository credentials compromise. Unauthorized actors cloned repositories used in a data migration pipeline. DocketWise has not publicly confirmed whether the data has appeared on the dark web or been used in identity theft attempts. If a class action is filed, discovery will likely produce more details about what happened to the copied data.
Can I sue DocketWise on my own?
You can, but individual lawsuits over data breaches are rarely cost-effective compared to class actions. A class action pools the claims of all affected individuals, which gives plaintiffs more leverage and spreads legal costs across the group. Shamis & Gentile and other data breach firms typically take these cases on a contingency basis — meaning you pay nothing unless the case wins or settles.
Will this breach affect future immigration applications?
Not directly — USCIS and immigration courts use their own secure systems that are separate from DocketWise. Your previously filed applications and case records held by USCIS are not affected by this breach. However, if a fraudster uses your stolen SSN or passport number to take actions in your name, that could create complications you would need to address with your attorney.
Last Updated: April 5, 2026
Disclaimer: This article is for informational purposes only and does not constitute legal advice. Legal claims and outcomes depend on specific facts and applicable law. For advice regarding a particular situation, consult a qualified attorney.
About the Author
Sarah Klein, JD, is a licensed attorney and legal content strategist with over 12 years of experience across civil, criminal, family, and regulatory law. At All About Lawyer, she covers a wide range of legal topics — from high-profile lawsuits and courtroom stories to state traffic laws and everyday legal questions — all with a focus on accuracy, clarity, and public understanding.
Her writing blends real legal insight with plain-English explanations, helping readers stay informed and legally aware.
Read more about Sarah